December 12, 2024

Introducing Gitpod secrets & environment variables

Gitpod now supports secrets and environment variables. Securely store and inject sensitive data such as API keys and access credentials into your development environment. Secrets are encrypted using AES256-GCM and stored securely. Only environments launched from an associated project can access it’s secrets.

Highlights:

• Environment Variables: Inject secrets as environment variables.
• Files: Secrets can be mounted as files for complex structures e.g. JSON.

What’s the benefit of files? Files offer better security by avoiding issues like process visibility, crash logging leaks, and unintentional inheritance by child processes.

See secrets for more.